Qualys Reaches Milestone of 1,000 Global Customers

More than 400 Organizations Adopt QualysGuard in the Last Six Months

Infosecurity Europe, London — April 29, 2003 — Qualys, Inc., the industry provider of on-demand security audit and vulnerability management solutions, today announced that its QualysGuard service has reached a milestone of 1,000 global subscribers, with more than 400 added in the last six months. The QualysGuard service delivered over the Web with an Intranet Scanner appliance provides enterprises with an automated solution to perform regular security audits, vulnerability management and remediation workflow, without the burden and cost of deploying and maintaining complex software or hardware.

“One of the thirteen critical sectors highlighted by the U.S. Department of Homeland Security for heightened security measures is the chemicals sector; and we have an obligation under the Department’s requirements to assess and improve the security of network infrastructure,” said Paul Simmonds, Director of Global Information Security for ICI, one of the world’s largest producers of specialty products and paints. Products made by ICI are the vital ingredients that add value to its customers’ products and processes. With 36,000 employees worldwide ICI had sales in 2002 of more than £6 billion.

“As a Web-based solution, QualysGuard enables us to perform security audits as often as necessary, spot vulnerabilities immediately as they are added to the QualysGuard database, and work proactively to remediate them. This helps us secure all of our network entry points, enforce ICI security policies and assists us meeting federal requirements,” Simmonds added.

“The increasing frequency of cyber attacks in today’s environment requires us to perform more frequent and more reliable security audits in order to stay ahead of vulnerabilities and ensure that our network is protected,” said Robert Noakes, Security Specialist for California State Lottery. “QualysGuard, with the Intranet Scanner appliance, allows us to conduct weekly and even daily security audits, while significantly reducing our costs and eliminating the complexity of deployment that we would have faced with traditional software scanners.”

The QualysGuard On-Demand platform is comprised of three components: Network Discovery, Security Auditing, and Vulnerability Management and Remediation Workflow. Together, these components enable organizations to accurately identify the systems on their network, recognize and prioritize vulnerabilities, and manage them through remediation. Unlike audits conducted with traditional software scanners, QualysGuard audits are fully automated and unalterable. They provide indelible audit trails that record when the security audit was performed, what vulnerabilities were uncovered, how to fix them, when they were assigned and to whom, and when the repairs were successfully implemented. QualysGuard allows such audits to be performed at anytime and on a regular basis.

“The incredible growth we’ve seen in our customer base demonstrates the increasing need for regular security auditing and vulnerability management. We have worked very closely with our customers to address their requirements to stay ahead of security threats and ensure compliance with new regulations,” said Philippe Courtot, Chairman and CEO of Qualys. “One of the advantages of Web delivery is that we can continue to develop our QualysGuard solution at a faster pace to meet our customers’ needs in this ever-changing security environment.”

About Qualys

With more than 2,000 subscribers ranging from small businesses to multinational corporations, Qualys has become the leader in on demand vulnerability management and policy compliance. The company allows security managers to strengthen the security of their networks effectively, conduct automated security audits and ensure compliance with internal policies and external regulations. Qualys’ on demand technology offers customers significant economic advantages, requiring no capital outlay or infrastructure to deploy and manage. Its distributed scanning capabilities and unprecedented scalability make it ideal for large, distributed organisations. Hundreds of large companies have deployed Qualys on a global scale, including AXA, DuPont, Hershey Foods, ICI Ltd, Novartis, Sodexho, Standard Chartered Bank and many others. Qualys is headquartered in Redwood City, California, with European offices in France, Germany and the U.K., and Asian representatives in Japan, Singapore, Australia, Korea and the Republic of China. For more information, please visit www.qualys.com.

Qualys, the Qualys logo and QualysGuard are proprietary trademarks of Qualys, Inc. All other products or names may be trademarks of their respective companies.